VDB
GO-2025-3424
GO-2025-3424
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Anubis has a bot protection bypass when a sophisticated attacker asks to pass a challenge of difficulty 0 in github.com/Xe/x
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | Xe/x | 0, 0 |
Timeline
- Jan 29, 2025 CVE Published
- May 18, 2025 CVE Updated
- May 1, 2026 Security Advisory
References
- https://nvd.nist.gov/vuln/detail/CVE-2025-24369 advisory
- https://github.com/Xe/x/commit/7bd7b209f4f1b897de85ec8973458dc8be606a8b patch
- https://github.com/Xe/x/commit/e09d0226a628f04b1d80fd83bee777894a45cd02 patch
- https://github.com/Xe/x/security/advisories/GHSA-56w8-8ppj-2p4f url
- https://xeiaso.net/notes/2025/GHSA-56w8-8ppj-2p4f url